During a postmortem, what type of questions should be prioritized according to best practices?

In a postmortem analysis, prioritizing "what questions" is crucial because they focus on understanding the specific events and actions that led to the incident. What questions help uncover the facts of the situation, detailing what went wrong and what was affected. These inquiries aim to gather concrete information about the circumstances surrounding the incident, such as what systems were involved, what processes failed, and what specific impacts occurred.

By addressing the "what" first, teams can create a solid foundation for further analysis. Understanding the facts allows teams to then explore the reasons behind these events, often leading to "why" and "how" questions. This structured approach ensures that the postmortem is grounded in reality, allowing for meaningful actions to be taken to prevent similar incidents in the future.

Other types of questions, although important, may not provide as direct a line to actionable insights at the initial stage. "Who questions" may focus on assignments or roles rather than the events tied to the incident, "when questions" may emphasize timing but lack the depth of context about the incident's nature, and "how questions" might delve into methodologies that could be better explored after establishing what actually happened. Thus, prioritizing "what questions" aligns with best practices for effectively conducting